f33ed5031030a2fbed4b44965cf6d2ea28d7559c44509c547132a3220fa68c50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bda1b9c4b8630dbf1dc52fbf32f6db60_NeikiAnalytics
Size

2.7MB
Sample

240509-wzje5sga9w
MD5

bda1b9c4b8630dbf1dc52fbf32f6db60
SHA1

1937e0d8f73ce6ab07d02e2a2cc7f1faca667ff1
SHA256

f33ed5031030a2fbed4b44965cf6d2ea28d7559c44509c547132a3220fa68c50
SHA512

999bd2b572085380b1e1185baef862b3f297b37a30dd4fade1978ac2656287ae8ea4674ae90c858432e30e5ada5213fcbff05a30d6fb04a6854b290dd7044fe9
SSDEEP

12288:7pRqvmDVqvQqpCtRwKA5p8Wgx+gWVBmLnWrOxNuxC7:TX5hqEfAL8WJm8MoC7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bda1b9c4b8630dbf1dc52fbf32f6db60_NeikiAnalytics
- Size
  
  2.7MB
- MD5
  
  bda1b9c4b8630dbf1dc52fbf32f6db60
- SHA1
  
  1937e0d8f73ce6ab07d02e2a2cc7f1faca667ff1
- SHA256
  
  f33ed5031030a2fbed4b44965cf6d2ea28d7559c44509c547132a3220fa68c50
- SHA512
  
  999bd2b572085380b1e1185baef862b3f297b37a30dd4fade1978ac2656287ae8ea4674ae90c858432e30e5ada5213fcbff05a30d6fb04a6854b290dd7044fe9
- SSDEEP
  
  12288:7pRqvmDVqvQqpCtRwKA5p8Wgx+gWVBmLnWrOxNuxC7:TX5hqEfAL8WJm8MoC7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2